This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
User contributions
(newest | oldest) View (newer 50 | older 50) (20 | 50 | 100 | 250 | 500)
- 18:30, 8 January 2015 (diff | hist) . . (+1) . . m 4.8.5.2 Tester MySQL (current)
- 18:01, 7 January 2015 (diff | hist) . . (+11,541) . . N 4.8.5.2 Tester MySQL (Created page with "{{Template:OWASP Testing Guide 4}} == Sommaire == Les vulnérabilités d'injections SQL SQL Injection adviennent chaque fois qu'une entrée est utilisée dans la constru...")
- 18:01, 7 January 2015 (diff | hist) . . (+26) . . User:Jcpraud
- 11:16, 7 January 2015 (diff | hist) . . (+20,092) . . N 4.8.5.1 Tester Oracle (Created page with "{{Template:OWASP Testing Guide v4}} == Sommaire == Les applications web qui utilisent PL/SQL passent par la passerelle PL/SQL Gateway, qui est le composant traduisant les re...") (current)
- 11:16, 7 January 2015 (diff | hist) . . (+27) . . User:Jcpraud
- 18:30, 6 January 2015 (diff | hist) . . (+3) . . Testing for SQL Injection (OTG-INPVAL-005) (Fixed a copy-paste error)
- 18:18, 6 January 2015 (diff | hist) . . (+32,317) . . N 4.8.5 Test d'Injection SQL (OTG-INPVAL-005) (Created page with "{{Template:OWASP Testing Guide v4}} == Sommaire == Une attaque par SQL injection consiste en l'insertion ou "injection" d'une requête SQL par...") (current)
- 18:17, 6 January 2015 (diff | hist) . . (+49) . . User:Jcpraud
- 17:50, 5 January 2015 (diff | hist) . . (+3) . . m 4.8.4 Test d'HTTP Parameter pollution (OTG-INPVAL-004) (current)
- 17:47, 5 January 2015 (diff | hist) . . (+13,125) . . N 4.8.4 Test d'HTTP Parameter pollution (OTG-INPVAL-004) (Created page with "{{Template:OWASP Testing Guide v4}} == Sommaire == <br> Fournir plusieurs paramètres HTTP de même nom peut induire l'application à en interprêter les valeurs de manière...")
- 17:47, 5 January 2015 (diff | hist) . . (+60) . . User:Jcpraud
- 15:39, 5 January 2015 (diff | hist) . . (+6,566) . . N 4.8.3 Test d'HTTP Verb Tampering (OTG-INPVAL-003) (Created page with "{{Template:OWASP Testing Guide v4}} == Sommaire == La spécification de HTTP comprend des méthodes de requêtes autres que les classiques GET et POST. Un serveur HTTP confo...") (current)
- 15:39, 5 January 2015 (diff | hist) . . (+55) . . User:Jcpraud
- 10:41, 5 January 2015 (diff | hist) . . (+12) . . 4.7.5 Tester les Cross Site Request Forgeries (OTG-SESS-005) (current)
- 10:40, 5 January 2015 (diff | hist) . . (+17,570) . . N 4.7.5 Tester les Cross Site Request Forgeries (OTG-SESS-005) (Created page with "{{Template:OWASP Testing Guide v4}} ==Sommaire== Les Cross Site Request Forgeries CSRF sont des attaques qui forcent les utilisateurs à exécuter des actions non désir...")
- 10:39, 5 January 2015 (diff | hist) . . (+24) . . User:Jcpraud
- 18:38, 22 December 2014 (diff | hist) . . (+15,429) . . N 4.8.2 Test de Stored Cross-Site Scripting (OTG-INPVAL-002) (Created page with "{{Template:OWASP Testing Guide v4}} == Sommaire == Les Cross-site Scripting (XSS) stockées sont le plus dangereux type de Cross Site Scripting. Les applications web qui...") (current)
- 18:38, 22 December 2014 (diff | hist) . . (+64) . . User:Jcpraud
- 17:22, 1 December 2014 (diff | hist) . . (+16,464) . . N 4.8.1 Test de Reflected Cross-Site Scripting (OTG-INPVAL-001) (Created page with "{{Template:OWASP Testing Guide v4}} == Sommaire == Les attaques Reflected Cross-site Scripting (XSS) ont lieu quand un attaquant injecte du code exécutable par le navig...")
- 17:22, 1 December 2014 (diff | hist) . . (+67) . . User:Jcpraud
- 14:26, 1 December 2014 (diff | hist) . . (+9,738) . . N 4.8 Tester la validation des entrées (Created page with "{{Template:OWASP Testing Guide v4}} ''' 4.8 Tester la validation des entrées ''' ---- La faille de sécurité la plus répandue sur les applications web est le manque de va...")
- 14:25, 1 December 2014 (diff | hist) . . (+45) . . User:Jcpraud
- 18:20, 26 November 2014 (diff | hist) . . (+3,781) . . N 4.7.8 Tester la confusion de session (OTG-SESS-008) (Created page with "{{Template:OWASP Testing Guide v4}} == Sommaire == La surcharge de variable de session (aussi connue sous le nom de confusion de session) est une vulnérabilité au niveau...")
- 18:20, 26 November 2014 (diff | hist) . . (+57) . . User:Jcpraud
- 17:54, 26 November 2014 (diff | hist) . . (+493) . . 4.7.7 Tester l'expiration de session (OTG-SESS-007)
- 17:13, 26 November 2014 (diff | hist) . . (+6,154) . . N 4.7.7 Tester l'expiration de session (OTG-SESS-007) (Created page with "{{Template:OWASP Testing Guide v4}} == Sommaire == Dans cette phase, les testeurs vont vérifier que l'application déconnecte automatiquement une utilisateur qui a été in...")
- 17:13, 26 November 2014 (diff | hist) . . (+1) . . User:Jcpraud
- 17:12, 26 November 2014 (diff | hist) . . (+1) . . User:Jcpraud
- 17:12, 26 November 2014 (diff | hist) . . (0) . . m 4.7.6 Tester les fonctionnalités de déconnexion (OTG-SESS-006) (Jcpraud moved page 4.7.6 Tester les fonctionnalités de déconnexion (OTG-SESS-06) to 4.7.6 Tester les fonctionnalités de déconnexion (OTG-SESS-006))
- 17:12, 26 November 2014 (diff | hist) . . (+78) . . N 4.7.6 Tester les fonctionnalités de déconnexion (OTG-SESS-06) (Jcpraud moved page 4.7.6 Tester les fonctionnalités de déconnexion (OTG-SESS-06) to 4.7.6 Tester les fonctionnalités de déconnexion (OTG-SESS-006)) (current)
- 17:11, 26 November 2014 (diff | hist) . . (+56) . . User:Jcpraud
- 16:55, 26 November 2014 (diff | hist) . . (+587) . . 4.7.6 Tester les fonctionnalités de déconnexion (OTG-SESS-006)
- 16:04, 26 November 2014 (diff | hist) . . (+7,386) . . N 4.7.6 Tester les fonctionnalités de déconnexion (OTG-SESS-006) (Created page with "{{Template:OWASP Testing Guide v4}} == Sommaire == Session termination is an important part of the session lifecycle. Reducing to a minimum the lifetime of the session token...")
- 16:04, 26 November 2014 (diff | hist) . . (+69) . . User:Jcpraud
- 15:55, 26 November 2014 (diff | hist) . . (+328) . . 4.7.5 Tester les CSRF (OTG-SESS-005)
- 00:39, 26 November 2014 (diff | hist) . . (+536) . . 4.7.5 Tester les CSRF (OTG-SESS-005)
- 22:44, 25 November 2014 (diff | hist) . . (+734) . . 4.7.5 Tester les CSRF (OTG-SESS-005)
- 00:00, 24 November 2014 (diff | hist) . . (+16,227) . . N 4.7.5 Tester les CSRF (OTG-SESS-005) (Created page with "{{Template:OWASP Testing Guide v4}} ==Sommaire== Les CSRF sont des attaques qui forcent les utilisateurs à exécuter des actions non désirées sur une application sur...")
- 23:59, 23 November 2014 (diff | hist) . . (+42) . . User:Jcpraud
- 21:43, 23 November 2014 (diff | hist) . . (+1,176) . . 4.7.4 Tester les variables de session exposées (OTG-SESS-004) (current)
- 14:33, 21 November 2014 (diff | hist) . . (+7,107) . . N 4.7.4 Tester les variables de session exposées (OTG-SESS-004) (Created page with "{{Template:OWASP Testing Guide v4}} == Sommaire == The Session Tokens (Cookie, SessionID, Hidden Field), if exposed, will usually enable an attacker to impersonate a victim...")
- 14:32, 21 November 2014 (diff | hist) . . (+68) . . User:Jcpraud
- 14:11, 21 November 2014 (diff | hist) . . (+371) . . 4.7.3 Tester les fixations de session (OTG-SESS-003) (current)
- 13:48, 21 November 2014 (diff | hist) . . (+4,366) . . N 4.7.3 Tester les fixations de session (OTG-SESS-003) (Created page with "{{Template:OWASP Testing Guide v4}} == Sommaire == When an application does not renew its session cookie(s) after a successful user authentication, it could be possible to fi...")
- 13:47, 21 November 2014 (diff | hist) . . (+58) . . m User:Jcpraud
- 13:35, 21 November 2014 (diff | hist) . . (+250) . . m 4.7.2 Tester les attributs des cookies (OTG-SESS-002) (current)
- 23:53, 20 November 2014 (diff | hist) . . (+10,012) . . N 4.7.2 Tester les attributs des cookies (OTG-SESS-002) (Created page with "{{Template:OWASP Testing Guide v4}} == Sommaire == Les cookies sont un vecteur d'attaque clef pour les utilisateurs malicieux (ciblant typiquement les autres utilisateurs) et...")
- 21:08, 20 November 2014 (diff | hist) . . (+59) . . m User:Jcpraud
- 19:48, 20 November 2014 (diff | hist) . . (+28) . . m User:Jcpraud
- 19:46, 20 November 2014 (diff | hist) . . (0) . . m 4.7.1 Tester le système de management des sessions (OTG-SESS-001) (Jcpraud moved page 4.7.1 Test de détournement de session to 4.7.1 Tester le système de management des sessions (OTG-SESS-001)) (current)
(newest | oldest) View (newer 50 | older 50) (20 | 50 | 100 | 250 | 500)